5 matches found
CVE-2026-33020
libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain an integer overflow which leads to a heap buffer overflow via sixelframeconverttorgb888 in frame.c, where allocation size and pointer offset computations for palettised images PAL1, PAL...
CVE-2026-30883 ImageMagick has a Heap Overflow when writing extremely large image profile in the PNG encoder
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an extremely large image profile could result in a heap overflow when encoding a PNG image. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41...
CVE-2026-30883
CVE-2026-30883 affects ImageMagick: a heap overflow can occur when encoding a PNG image with an extremely large image profile. Vulnerable versions are prior to 7.1.2-16 and 6.9.13-41. The issue is fixed in 7.1.2-16 and 6.9.13-41. per multiple sources (CloudLinux CLSA, Debian security notes, Amazo...
CVE-2014-9601
Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed...
Debian Security Advisory DSA 1839-1 (gst-plugins-good0.10)
The remote host is missing an update to gst-plugins-good0.10 announced via advisory DSA 1839-1. OpenVAS Vulnerability Test $Id: deb18391.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1839-1 gst-plugins-good0.10 Authors: Thomas Reinke Copyright: Copyright ...